Sam Klein via FreeIPA-users wrote: > Using certutil, I'm able to extract my localhost CA using this command. > > certutils -L -d dbm:/etc/ipa/nssdb -a -n 'Local IPA host' > > However, I need a signing key to create a private key. Is there a method to > extract a private key that signed my localhost CA from the endpoint, or does > this key exist on my server?
Need more context on what you're trying to do. You shouldn't need direct access to the CA private key. rob _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
